An urgent security alert has been issued for Android users concerning a critical flaw that could potentially compromise the security of their devices. This vulnerability, identified by the Donjon security team, allows cyber criminals to bypass a phone’s lock screen within minutes, exposing sensitive data and granting unauthorized access to stored information.
The flaw, known as CVE-2026-20435, impacts certain Android devices powered by MediaTek processors, which are commonly found in budget-friendly smartphones. Security experts have warned that attackers can exploit this vulnerability to extract encryption keys before the system fully initializes, circumventing security measures like full-disk encryption and lock screen protections.
Malwarebytes highlighted that approximately one in four Android phones, particularly lower-cost models, are at risk due to the use of MediaTek SoCs with Trustonic’s TEE. The exploit demonstrated by researchers involved connecting a vulnerable phone to a laptop via USB to quickly retrieve the device’s PIN, decrypt storage, and access sensitive files, including data from software wallets.
To mitigate the risk posed by this security threat, users are advised to verify their phone’s processor information in the Settings menu and promptly install any available security updates, especially if their device runs on a MediaTek chip. Although MediaTek has released a fix, individual device manufacturers must distribute the patch through software updates to ensure protection.
It is essential to emphasize that this attack requires physical access to the device, significantly reducing the risk for users who keep their phones secure and up to date. However, individuals with older devices that no longer receive updates should exercise caution or consider upgrading to safeguard their personal information from potential breaches.